IBM Support

Fix packs for DataPower Service Gateway version 6.0

Download


Abstract

List of fixes in fix packs for IBM WebSphere DataPower Service Gateway version 6.0.

Download Description

Fix packs are located on Fix Central.


Important:
  • Before installing any fix pack, review DataPower Knowledge Collection on firmware updates.
  • For information about how to download DataPower fix packs from Fix Central, see Fix Central.



  • 6.0.0.19

    Release date: 8 March 2016
    Last modified: 8 March 2016
    Status: Available

    APAR
    Description
      GNU C LIBRARY (GLIBC) VULNERABILITY AFFECTS IBM DATAPOWER GATEWAYS (CVE-2015-7547)
      A HASH SELECTOR VULNERABILITY IN IBM GSKIT AFFECTS IBM DATAPOWER GATEWAYS.


    6.0.0.18

    Release date: 5 February 2016
    Last modified: 5 February 2016
    Status: Available

    APA
    Description
    IT10034REFRESHING AN OAUTH ACCESS TOKEN DOES NOT RESULT IN AN ERROR WHEN USING INVALID PARAMETER
    IT11162DATAPOWER RESTARTS WHILE PROCESSING MIME ATTACHEMENT WITH VERY LONG FILENAME (OVER 254 CHARACTERS) AND PROBE ENABLED.
    IT11174AAA LDAP AUTHENTICATION OR AUTHORIZATION MIGHT FAIL WHEN DN CONTAINS WHITE SPACE.
    IT11215SFTP ISSUE PASSING CERTAIN NON-ALPHANUMERIC CHARACTERS IN PASSWORD
    IT11426OAUTH REFRESH TOKEN CANNOT BE RE-USED
    IT11551DATAPOWER RESTART CAUSED BY MISSING SYNCHRONIZATION IN PROBE CODE
    IT11552Transactions might hang on cached document revalidation or the appliance might restart
    IT11642APPLIANCE LOAD ALONG WITH DIAGNOSTIC COMMAND CAN RESULT IN RESTART OF THE APPLIANCE.
    IT11678USING SNMP FOR OID 1.3.6.1.2.1.4.20 CAN LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTART
    IT11697SNMP FUNCTION HAS POTENTIAL VULNERABILITIES
    IT11733OAUTH AUTHENTICATION WHOSE GRANT TYPE IS PASSWORD FAILS WHEN THE PASSWORD CONTAINS %
    IT11824IN RARE CASES, USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING RESTARTS OR HUNG TRANSACTIONS
    IT11825USING SECURE BACKUP MIGHT LEAD TO UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND APPLIANCE RESTART
    IT11841USE OF STANDBY GROUP WITH SELF-BALANCING CAN RESULT IN UNEXPECTED BEHAVIOR INCLUDING HUNG TRANSACTIONS AND RESTART
    IT11926THE APPLIANCE MAY UNEXPECTEDLY RESTART WHEN PERFORMING AN MQFTE BACKOUT
    IT11928RBM RADIUS FAILOVER NOT WORKING
    IT11997FTP FRONT SIDE HANDLER ENDS THE CONNECTION WHEN PASSIVE PORT IS 65535
    IT12032DATAPOWER APPLIANCE MAY UNEXPECTEDLY RESTART IN MQFTE TRANSACTION
    IT12035APPLIANCE MAY RESTART WHILE PROCESSING MQ
    IT12040RESOURCE OWNER IS SET INCORRECTLY WHEN FORMS LOGIN COOKIE IS BEING USED
    IT12043APPLIANCE MAY HANG AND WATCHDOG DURING THE OAUTH CONFIGURATION
    IT12061UNDER LOAD AN SSL PROXY SERVICE MAY INTERMITTENTLY FAIL
    IT12548IN SOME CASES DATAPOWER MAY NOT PROPERLY PARSE DIME MESSAGES, WHICH RESULTS IN A MALFORMED MESSAGE BEING SENT TO THE NEXT HOP
    IT12556UNEXPECTED RESULTS MAY BE DISPLAYED ON STATUS PROVIDERS AND IN SOME CASES CAUSE UNEXPECTED RESTART ON ERROR REPORT GENERATION
    IT12635SOME OBJECTS MAY UNINTENTIONALLY BE EXPORTED RESULTING IN ERROR MESSAGES ON RE-IMPORT.
    IT12863SET-CONFIG SOMA CALL MAY FAIL IF INSERTIONATTRIBUTES ELEMENT IS INCLUDED
    IT13742SLOTH: VULNERABILITIES IN TLS HANDSHAKE DUE TO USE OF MD5 SIGNATURES


6.0.0.17

Release date: 6 November 2015
Last modified: 5 November 2015
Status: Available

    APAR
Description
IT09081ERRORS ARE SEEN WHEN AN FTP CLIENT CLOSES THE CONNECTION IMMEDIATELY AFTER OPENING A DIRECTORY
IT09792VALIDATE DOCUMENT VIA SCHEMA ATTRIBUTE WITH NON-XML SERVICE REQUEST TYPE RESTARTS APPLIANCE
IT09865USER WITH READ-EXECUTE ONLY PERMISSIONS MAY NOT EXPORT ALL OBJECTS IN CONFIGURATION
IT10105CVE-2015-1788 MALFORMED ECPARAMETERS MIGHT CAUSE INFINITE LOOP
IT10115VALIDATION USING XSD:DECIMAL TYPE, IN SOME CASES, MAY CAUSE FALSE REJECTIONS
IT10149AN FTP TRANSACTION MIGHT NOT COMPLETE OR TIME OUT
IT10279MISSING SECURE ATTRIBUTE ON SESSION COOKIE
IT10321POLLING STATISTICS MAY CAUSE AN UNEXPECTED RESTART
IT10355UNIQUE CACHE KEY IS NOT USED FOR PROTOCOL BASED CACHE POLICY TYPES
IT10426RAW TCP URL-OPEN MAY CAUSE A RESTART IF YOU PASS A NULL STRING AS THE HOSTNAME
IT10501DOCUMENT CACHE MIGHT STOP CACHING UNDER SOME CIRCUMSTANCES
IT10508APPLIANCE MAY RESTART WHEN USING INCLUDE-CONFIG IF THE CONFIG FILE IS NOT ACCESSIBLE ON THE NETWORK
IT10598SECURE-BACKUP MAY CAUSE DEVICE TO HANG UNEXPECTEDLY
IT10628WHEN USING FIRST ALIVE DNS ON DATAPOWER, SOME DNS RESPONSES MAY BE INCORRECTLY IGNORED
IT10637LDAP SEARCH WITH LDAP CONNECTION POOL MAY GET MSGID MISMATCH ERROR
IT10644DATAPOWER WEBGUI WARNING MESSAGE MAY SHOW WRONG DEVICE TYPE ON DOWNGRADE
IT10718THE DATAPOWER GATEWAY RESTARTS WHILE USING STYLESHEET TO AUTOMATICALLY CLEAR THE CACHE
IT10890LARGE XSLT UPLOAD IN INTERNET EXPLORER (IE) CAUSES HANG
IT10977DATAPOWER FAILS TO CREATE VALID XML IN CONVERT-HTTP(JSON) ACTION IF JSON STRING CONTAINS backslash characterU0026 OR backslash characterU003E
IT11010IN RARE CASES BACKTRACES MAY NOT BE GENERATED PROPERLY
IT11147DATAPOWER MQ-QM FAILS TO CONNECT WITH AN MQ REASON CODE OF 2538 WHEN SSL IS USED
IT11169CONTENT-TYPE HEADER REMOVED FROM GET REQUESTS
IT11190SOME WEB SERVICE PROXY CONFIGURATIONS MAY DEVELOP A STATE WHERE CHANGES CANNOT BE APPLIED THROUGH INTERNET EXPLORER
IT11191DURING A WEB TOKEN SERVICE TRANSITION TO UP STATE, THE DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART


6.0.0.16

Release date: 4 September 2015
Last modified: 2 September 2015
Status: Available

APAR
Description
IT08399TCP PROXY BEING UNABLE TO WRITE TO FRONT END MAY CAUSE APPLIANCE RESTART
IT08663SOME SSL CONNECTIONS WHICH FAIL TO COMPLETE HANDSHAKE MIGHT NOT TIME OUT
IT08838WITH MQ SHARED CONVERSATION ENABLED, ANY ACCESS PROBLEM TO THE MQ SERVER MIGHT RESULT IN A DATAPOWER UNEXPECTED RESTART
IT08971INDEFINITE HTTP GET REQUEST RETRIES CAN OCCUR WHEN USING SERVICES WITH PERSISTENT CONNECTIONS
IT09063DATAPOWER XML MANAGEMENT COMMANDS MIGHT INTERMITTENTLY FAIL TO COMPLETE
IT09129CUSTOM OAUTH PROCESS DOES NOT PROVIDE SPECIFIC ERROR_ID IF VERIFY-AZ-REQUEST FAILS
IT09132USING THE DIAGNOSTIC COMMAND SHOW HANDLES CAN RESULT IN UNEXPECTED BEHAVIOR
IT09145DISABLING ALL DOMAINS OR APPLIANCE QUIESCE WITH LARGE AMOUNT OF SQL CONNECTIONS MAY LEAD TO AN UNEXPECTED RESTART OF APPLIANCE
IT09304VIRTUAL APPLIANCES RUNNING ON HOSTS WITH HOTPLUG CPUS ENABLED OR MORE THAN 40 CPUS MAY UNEXPECTEDLY RESTART
IT09308SERVICE LEVEL MANAGEMENT CONFIGURED POLICIES MIGHT NOT BE PROPERLY ENFORCED
IT09358DATAPOWER MPGW, WSP, AND WAF SERVICES DO NOT PRESERVE HTTP 1.0
CONTENT-LENGTH ON PASSTHROUGH RESPONSE IF CONTENT-LENGTH > 32K
IT09382DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART WHEN PEER GROUP IS ENABLED AND HAS IMPROPERLY FORMATTED URL
IT09396CONTENT-LENGTH HEADER NOT AVAILABLE IN RESPONSE OBJECT AFTER MAKING URL-OPEN CALL
IT09638WHEN USING SSL OPTIONS TO GENERATE SSL PROXY PROFILE FOR MQ-QM, AN UNEXPECTED DISCONNECT MAY OCCUR
IT09742WHEN TRYING TO UPDATE SUMMARY OF AN ACCESS CONTROL LIST (ACL) OBJECT FROM THE CLI, AN APPLIANCE RESTART MIGHT OCCUR
IT09773WHILE DELETING AN MQ DOMAIN THAT INCLUDES SSL PROFILES GENERATEDBY SSL OPTIONS, DATAPOWER MIGHT EXPERIENCE AN UNEXPECTED RESTART
IT09825MANY CONCURRENT SFTP POLLER CONNECTIONS MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT09835JSONIQ HANDLING OF JSON INPUT WITH SURROGATE PAIRS OR ESCAPED CHARACTERS IS BROKEN
IT09902SLM ENFORCEMENT BY PAYLOAD REQUEST SIZE MIGHT NOT WORK IN PEERING SCENARIOS
IT09938EXTENSION FUNCTION DP:RADIX-CONVERT() MIGHT CAUSE AN UNEXPECTED APPLIANCE RESTART
IT10006CONTENT-SECURITY-POLICY HEADER DEFAULT-SRC MIGHT NOT RENDER PROPERLY IN CASCADING STYLE SHEETS
IT10010DURING A WEB TOKEN SERVICE TRANSITION TO UP STATE THE DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT10055THE GNU C LIBRARY (GLIBC) HAS VULNERABILITIES AS SPECIFIED IN CVE-2013-7423 AND CVE-2015-1781
IT10061CVE-2015-4000 DIFFIE-HELLMAN 512-BIT EXPORT-GRADE CIPHER MIGHT BE VULNERABLE TO ATTACKER
IT10064CVE-2014-9636, CVE-2014-8139, CVE-2014-8140, CVE-2014-8141 UNZIPUTILITY MIGHT RESULT IN AN UNEXPECTED RESTART
IT10086TIMED OUT SSL COMMUNICATION MIGHT NEVER FINISH
IT10104CVE-2015-1788, CVE-2015-1789, CVE-2015-1790, CVE-2015-1791, CVE-2015-1792, CVE-2014-8176 OPENSSL PSIRT ISSUES
IT10110WEBGUI OPTIONS FOR SSLV3 EXIST FOR MQ
IT10128WITH MQ SHARING CONVERSATION ENABLED AND HIGH MESSAGE TRAFFIC A DATAPOWER APPLIANCE MIGHT UNEXPECTEDLY RESTART
IT10219DOCUMENT CACHE CONTINUES TO REFETCH RESOURCES EVEN IF BACKEND CONFIRMS NO CHANGE SINCE CACHED COPY
IT11312DOCUMENT CACHE TREATS 304 RESPONSE WITH ETAG THAT IS DIFFERENT FROM CACHED ENTRY ETAG AS UNSUCCESSFUL REVALIDATION
IT11326DOCUMENT CACHE DOES NOT UPDATE ALL HEADERS OF CACHED ENTRY ON 304 RESPONSE



6.0.0.15

Release date: 30 June 2015
Last modified: 13 August 2015
Status: Available

APAR
Description
IT06611ISAM REQUESTS MAY NOT ROUTE PROPERLY WHEN BOTH IPV4 AND IPV6 ROUTES ARE CONFIGURED
IT07047XSLT COMPILE OPTIONS POLICY SETTING STYLESHEET SPECIFIED IS NOT HONORED.
IT07218MESSAGE BODY MIGHT BE INCORRECTLY RETURNED WITH HTTP 204 RESPONSE
IT07346CUSTOM REVOCATION BY OAUTH RESOURCE OWNER MIGHT NOT COMPLETE REVOCATION
IT07353RESTARTING A DOMAIN WITH NUMEROUS MQ QUEUE MANAGERS MIGHT RESULT IN AN UNEXPECTED APPLIANCE RESTART
IT07368CUSTOM SLM RESOURCE CLASS NOT RECOGNIZED BY WS-MEDIATIONPOLICY
IT07807IN SOME CASES DP:DEFLATE WITH GZIP ALGORITHM WILL CAUSE PAYLOADS TO BE TRUNCATED
IT07921SSH ACTIVITY MIGHT CAUSE UNEXPECTED BEHAVIOR
IT07956USING ACCESS CONTROL LISTS IN A NETWORK ENVIRONMENT WITH PACKAGE FRAGMENTATION MAY RESULT IN INSTABILITY OF TCP CONNECTIONS
IT08134REGEXP:REPLACE() MIGHT YIELD INCORRECT RESULTS WHEN INPUT TEXT CONTAINS MULTI-BYTE CHARACTERS
IT08202DEPRECATED SQL CLI COMMANDS MIGHT CAUSE AN APPLIANCE RESTART IF INVOKED WITHOUT AN ARGUMENT
IT08208USAGE OF NFS, FTP OR SFTP POLLER FRONT-SIDE HANDLER MIGHT RESULT IN AN APPLIANCE RESTART
IT08231DURING SECURE RESTORE, VALIDATION OF SOME CONFIGURATION PROPERTIES MIGHT BE INCORRECT
IT08917SSLV3 PROTOCOLS AND RC4 CIPHERS WITH VULNERABILITIES SHOULD BE DISABLED BY DEFAULT
IT09536URLREFRESH CONFIGURATION PROPERTIES CONTAINS DUPLICATE ENTRIES WHICH MIGHT LEAD TO APPLIANCE RESTART ON CONFIGURATION CHANGES



6.0.0.14

Release date: 30 April 2015
Last modified: 11 May 2015
Status: Available

APAR
Description
IT04826BATTERY END OF LIFE AND VOLTAGE WARNING MESSAGES ON A DATAPOWER 9005 APPLIANCE
IT05684XC10 GRID OBJECT MIGHT NOT ACCEPT UNDERSCORE (_) IN USERNAME FIELD
IT05952EXTRA 0 CHARACTER IN HTTP 500 RESPONSE WHEN COMPRESSION OPTION IN FRONT SIDE HANDLER IS ENABLED
IT05987FOR JSON TYPE MESSAGES, ESCAPING IS INCORRECT. EXAMPLES ARE SURROGATE PAIRS, SUCH AS EMOJI, AND A BMP IN AN OBJECT NAME
IT06007ASYNCHRONOUS CALL IN AN ERROR RULE AND ASYNC RULE IN A STYLESHEET USING DOCUMENT() MIGHT TRIGGER RESTART
IT06195INCORRECT CONFIGURATION OF A SCHEDULED RULE MIGHT RESULT IN AN UNEXPECTED IMMEDIATE RESTART
IT06232IN SOME SITUATIONS MQ CONNECTIONS MIGHT CAUSE AN UNEXPECTED RESTART
IT06471DATAPOWER APPLIANCE USING AN SFTP POLLER MIGHT EXPERIENCE AN IMMEDIATE RESTART
IT06480IN SOME CIRCUMSTANCES A RESTART MIGHT OCCUR WHEN CHANGING A PASSWORD VIA SSH
IT06484CONNECTION FROM DATAPOWER APPLIANCE TO IMS BACKEND SERVER HANGS WHEN IMS BACKEND SERVER SENDS NULL RESPONSE TO DATAPOWER
IT06511VIRTUAL APPLIANCE REPORTS ERROR CODE 1FD WHEN INITIALIZING APPLIANCE
IT06621WEB APPLICATION FIREWALL COOKIE POLICY MIGHT STRIP QUOTES FROM AUTHORIZATION COOKIE VALUE
IT06671WHEN ATTEMPTING TO CREATE A CHECKPOINT OF A LARGE DOMAIN THE OPERATION MIGHT TIME OUT
IT06761A LIMITED NUMBER OF JMS FRONT SIDE HANDLERS CAN BE UP AT THE SAME MOMENT
IT06796DATAPOWER URL-OPEN EXTENSION FUNCTION DOES NOT ALLOW SENDING AN HTTP PUT REQUEST WITH AN EMPTY BODY
IT06889APPLIANCE MIGHT IMMEDIATELY RESTART WHEN DNS USES TCP AND A REQUEST TIMES OUT
IT06895UNABLE TO IMPORT-EXECUTE USING ENFORCE RBM ON CLI
IT070032426 APPLIANCES MIGHT SHOW A PRODUCT ID OF 7198 OR 7199
IT07119NBLEAK REPORT MEMORY DIAGNOSTIC TOOL MIGHT OMIT SOME CALLSTACK INFORMATION
IT07164A POTENTIAL WATCHDOG MIGHT OCCUR WHEN USING INTELLIGENT LOAD DISTRIBUTION (ILD) FEATURE OF THE AO OPTION
IT07237ERROR REPORTS MIGHT OMIT FIRMWARE VERSION OR DATETIMESTATUS INFORMATION
IT07296AFTER SOFTWARE FALLBACK WE MIGHT GENERATE MANY LOG MESSAGES FOR THE CRYPTO HARDWARE FAILURE
IT07570STORE://JSONX2JSON.XSL DOES INCORRECT UNCONDITIONAL ESCAPING OF REVERSE SOLIDUS AND MISSES ESCAPING OF JSONX @NAME
IT07854NEED RESOLUTION TO CVE-2015-0287, CVE-2015-0289, CVE-2015-0292, CVE-2015-0293 ADVISORIES



6.0.0.13

Release date: 23 March 2015
Last modified: 22 March 2015
Status: Available

APAR
Description
IT06901CVE-2015-0204 - SSL/TLS CLIENTS MIGHT SILENTLY DOWNGRADE RSA CIPHERS TO EXPORT_RSA
IT06902CVE-2014-3570 - SSL BIGNUM SQUARING MIGHT PRODUCE INCORRECT RESULTS
IT07236CVE-2014-3566 POODLE ATTACK RESOLUTION FOR TAM/ISAM
IT07604CVE-2015-0138: GSKIT MIGHT ACCEPT A WEAK EPHEMERAL RSA KEY FOR NON EXPORT CIPHERSUITES IN SSLV3.0 AND TLS 1.0



6.0.0.12

Release date: 10 February 2015
Last modified: 11 February 2015
Status: Available

APAR
Description
IT04792SQL CALL THAT RETRIEVES A LARGE DATASET MIGHT CAUSE THE APPLIANCE TO RESTART IN DEVELOPMENT ENVIRONMENTS
IT04845CUSTOM POLICY DOMAIN SAMPLES MIGHT NOT WORK WITH ALL WS-POLICY NAMESPACES
IT04883DATAPOWER MIGHT IGNORE AUTHENTICATION/AUTHORIZATION CACHED ENTRIES WHEN A SIGNED ENVELOPED MESSAGE IS USED FOR AAA AUTHENTICATION/AUTHORIZATION
IT04947READING OF CHUNKED ENCODING WITH HTTP BODY COMPRESSION MIGHT UNEXPECTEDLY CAUSE THE NEXT REQUEST OR RESPONSE NOT BE PROCESSED
IT05111INTERMITTENT CRYPTO ENGINE FAILURES
IT05294JSON VALIDATION MIGHT FAIL FOR DATE-TIME FIELD
IT05579THE REPORTED INSTALLED MEMORY MIGHT VARY SLIGHTLY FROM THE ACTUAL INSTALLED MEMORY
IT05598DATAPOWER APPLIANCE MIGHT RESTART DURING A TRANSACTION WHEN A DOCUMENT CACHE IS ENABLED
IT05626USE OF FORMAT-NUMBER() XSLT FUNCTION MIGHT LEAD TO UNEXPECTED RESTART OF APPLIANCE DUE TO UNEXPECTED MEMORY GROWTH
IT05828CONFIGURING AN INCOMPLETE BACKEND-RULE FOR WSM-ENDPOINTREWRITE MIGHT RESULT IN AN APPLIANCE RESTART
IT05864PERFORMANCE REDUCTION WITH 6.0 AND HIGHER FIRMWARE
IT05900DOMAINS THAT ARE CREATED FROM CLI MIGHT NOT HAVE SOME DOMAIN DEFAULTS FOR URL PROTOCOLS SET AS EXPECTED
IT05905COMPARE AND REVIEW CONFIGURATION TOOLS MIGHT DISPLAY UNEXPECTED RESULTS
IT05922SSL/TLS FALLBACK PROTECTION (TLS_FALLBACK_SCSV)
IT05969CLI SHOW COMMAND MIGHT IMPROPERLY CREATE DOMAIN OBJECTS
IT05998DATAPOWER APPLIANCE MIGHT NOT RESPOND WHILE UNDER HIGH LOAD WITH SHARING CONVERSATIONS AND NETWORK EVENTS DELAYED
IT06941SECURITY ISSUES IN SOME GNU C LIBRARY (GLIBC) FUNCTIONS



6.0.0.11

Release date: 7 January 2015
Last modified: 6 January 2015
Status: Available

APAR
Description
IT06055CVE-2014-8730 - STRICTLY ENFORCE VERIFYING BLOCK CIPHER PADDING



6.0.0.10

Release date: 26 November 2014
Last modified: 24 November 2014
Status: Available

APAR
Description
IT03095ERROR MIGHT OCCUR WHEN COMPILING XML SCHEMA WITH XS:COMPLEXTYPE/XS:SIMPLECONTENT/XS:RESTRICTION
IT03873DURING SOME MQ OBJECT STATE TRANSITIONS THE DATAPOWER APPLIANCE MIGHT ENCOUNTER AN UNEXPECTED IMMEDIATE RESTART
IT03931DATAPOWER MIGHT INTERMITTENTLY FAIL TO PARSE DATA FROM THE DOCUMENT CACHE WHEN CONSTANTLY AT MAXIMUM XML NAME LIMIT
IT03971ON DEMAND ROUTER SESSION AFFINITY IS NOT ALWAYS MAINTAINED
IT04329SFTP POLLER FAILS TO RECOGNIZE FILES WHEN LARGE NUMBER OF FILES ARE PRESENT IN TARGET DIRECTORY
IT04351UNDER CERTAIN CONDITIONS QUIESCE/UNQUIESCE OPERATION MIGHT RESULT IN AN IMMEDIATE RESTART OF THE DEVICE
IT04387API MANAGEMENT MIGHT NOT ENFORCE QUOTAS PROPERLY
IT04452UNDER CERTAIN CONDITIONS HAVING WSMAGENT MONITORING FLAG ENABLED MIGHT CAUSE AN UNEXPECTED RESTART OF THE APPLIANCE
IT04661USING LDAP CONNECTION POOLING, DATAPOWER MIGHT RESTART WHEN REFRESHING LDAP CONNECTION POOL STATUS OR ENTRIES IN WEBGUI
IT04698USER GROUP NONE MIGHT BE CREATED FOR A NEW LOG TARGET
IT04764DATAPOWER DOES NOT HONOR WILDCARD SCOPE FOR OAUTH CLIENT PROFILE
IT04771A DATAPOWER APPLIANCE CONFIGURED FOR MQ SHARING CONVERSATIONS MIGHT RESTART IF THE NETWORK IS UNSTABLE
IT04784DATA COLLECTION FOR WATCHDOG ISSUES MIGHT BE TRUNCATED
IT05082DISABLE SSLV3 IN DATAPOWER WEB MANAGEMENT AND XML MANAGEMENT SERVICES BY DEFAULT
IT05116MORE DETAILED SECURE SOCKETS LAYER (SSL) PROTOCOL ERROR MESSAGES NEEDED



6.0.0.9

Release date: 30 September 2014
Last modified: 28 April 2015
Status: Available

APAR
Description
IT02341ENABLING DATAPOWER WEB SERVICES MANAGEMENT MIGHT CAUSE A RESTART
IT02628 CPU USAGE IN 10 SEC, 1 MIN, 10 MIN, 1 HOUR, AND 1 DAY MIGHT RISE UP TO 100% 24 HOURS AFTER A REBOOT
IT02760PASSING NULL INPUT TO THE DP:ENCODE XML EXTENSION FUNCTION MIGHT CAUSE A RESTART
IT02762DATAPOWER MIGHT RESTART WHEN PROCESSING CERTAIN MQ MESSAGES
IT02779 PARSE ERROR MIGHT OCCUR WHEN RETRIEVING FTP LIST OF MORE THAN 25 FILES
IT02803WHEN THE "PROCESS MESSAGES WHOSE BODY IS EMPTY" OPTION IS SET TO ON, UNEXPECTED TIMEOUT WOULD HAPPEN UPON RECEIVING HTTP 304 RESPONSE
IT02834SESSION AFFINITY OF A LOAD BALANCER GROUP SET TO ACTIVE-CONDITIONAL MIGHT CAUSE A RESTART
IT02925CREATING CHECKPOINT FAILS WITH OPERATION TIMEOUT ERROR DUE TO TOO MANY FILES IN CONFIGURATION
IT02956ENHANCED SECURITY ON SEVERAL WEBGUI PARAMETERS
IT03015 MS SQL QUERIES CONTAINING LARGE INPUTS MIGHT FAIL
IT03047DATAPOWER MIGHT TIME OUT WHILE READING BACKEND RESPONSE OVER SSL
IT03094DATAPOWER MIGHT RESTART WHEN CONFIGURED USING SLM *MULTICAST* PEERING IN AN SLM PEERING GROUP THAT HAS THREE OR MORE MEMBERS
IT03145 IN RARE CASES, CONFIGURING ATTEMPT STREAMING RULE ON 9004 APPLIANCES MIGHT CAUSE APPLIANCE RESTART WHEN COMPILING A STYLESHEET
IT03344POP POLLER FRONT SIDE HANDLER MIGHT TRUNCATE MESSAGE
IT03442SCHEMA FOR ODCINFO FILE IS INCORRECT
IT03868 CVE-2014-3511 - VULNERABILITY IN SSL TLS NEGOTIATION PROCESSING
IT03874CVE-2014-3508 - PRETTY-PRINT RESULTS OVER SSL MIGHT INCLUDE EXTRANEOUS DATA
IT08435CVE-2014-0852 - SSL/TLS SIDE CHANNEL DECRYPTION VULNERABILITY ON DATAPOWER HARDWARE SECURITY MODULE



6.0.0.8

Release date: 8 August 2014
Last modified: 22 August 2014
Status: Available

APAR
Description
IC99865WSPOLICY DOCUMENTS REFERENCED BY WSP:POLICYREFERENCE DURING WSDL COMPILATION MIGHT NOT BE RELEASED AND CAUSE MEMORY GROWTH
IT00812UNEXPECTED RESTART MIGHT OCCUR WHEN CLI COMMANDS ARE ENTERED
IT00914REFLECTED XSS VULNERABILITIES IN WEBGUI
IT00982SOME PROBE TRANSACTION LABELS DISPLAY TWICE
IT01111SECURITY CVE-2014-0852: SSL/TLS SIDE CHANNEL DECRYPTION VULNERABILITY
IT01123WEBSPHERE JMS FAILOVER MIGHT NOT WORK
IT01190ATTEMPT TO RE-MOUNT AN NFS MOUNT MIGHT FAIL IN SOME CASES
IT01192USING WEB SERVICE MONITORING MIGHT RESULT IN RANDOM APPLIANCE RESTARTS
IT01205UNDER SOME CIRCUMSTANCES IF A LOG TARGET UPLOAD FAILS DATAPOWER MIGHT RETURN UPLOAD SUCCESS MESSAGE BEFORE FAILURE MESSAGES
IT01287DEEP OR RUNAWAY RECURSION IN XML TRANSFORM MIGHT CAUSE A DATAPOWER APPLIANCE TO RESTART
IT01563APPLIANCES WITH HSM FEATURE MIGHT EXPERIENCE IMMEDIATE RESTART UNDER LOAD
IT01586DATAPOWER MIGHT NOT RE-SYNCHRONIZE WSDL FILES FROM WSRR SERVER WHEN IT FAILS TO RETRIEVE THE FILES DUE TO AN ERROR CONDITION
IT01666DATAPOWER SAVED SEARCH SUBSCRIPTIONS DO NOT PROPERLY HANDLE WSRRSERVICE VERSION OBJECTS OF SUBCLASSES
IT01688SOME WEB SERVICE PROXY SETTINGS ARE LOST WHEN SERVICE IS MODIFIED
IT01769DATAPOWER MIGHT NOT CLOSE OUTBOUND SFTP CONNECTIONS IF THE BACKEND BECOMES UNRESPONSIVE WHILE CONNECTING
IT01802DATAPOWER RESTARTS WHEN NULL HOSTNAME IS CONFIGURED FOR TIBCO BACKEND
IT01873POSSIBLE RESTART MIGHT OCCUR DURING TRANSACTION WHEN MEDIATION-METRICS OPTION IS ENABLED AND AN ASYNC ACTION IS CONFIGURED IN A SERVICES PROCESSING POLICY
IT02041HTML FORMS LOGIN MIGRATION COOKIE IS NOT ENCRYPTED
IT02050ENHANCED SECURITY ON WEBGUI PARAMETERS
IT02104PROBE BROKEN IF XML MANAGER DOCUMENT CACHE POLICY MATCHES http://127.0.0.1:63504
IT02106APPLIANCE RESTART MIGHT OCCUR UNDER HIGH TRAFFIC LOAD OR CONFIGURATION CHANGE
IT02109APPLIANCE RESTART MIGHT OCCUR DURING AN IMMEDIATE RESTART OR RESTART OF AN APPLICATION DOMAIN
IT02157DATAPOWER VARIABLE ORIGINAL-RESPONSE-CONTENT-TYPE MIGHT BE TRUNCATED
IT02315TRANSFORM BINARY ACTION USES CACHED VERSION OF WTX MAP (.DPA) FILE INSTEAD OF UPDATED FILE, WHEN THE FILE IS ON A RAID VOLUME
IT02353USING ISAM MANAGE LOCAL POLICY DATABASE ACTION MIGHT RESULT IN AN APPLIANCE RESTART
IT02355ISAM CERTIFICATE RENEWAL ACTION MIGHT RESULT IN AN APPLIANCE RESTART
IT02359RAPID SEQUENTIAL EXECUTION OF THE ISAM CERTIFICATE RENEWAL ACTION FOR THE SAME ISAM CLIENT MIGHT CAUSE THE CLIENT TO FAIL
IT02360INVALID TLS RECORD PROCESSING MIGHT RESULT IN HIGH CPU UTILIZATION IN ISAM CLIENTS
IT02476WITH SHARING CONVERSATION ENABLED, MQ-QM OBJECTS RUN INTO PENDING STATE AND HIGH CPU IS OBSERVED WHEN THERE IS MQ ERROR
IT02492PROTECTION AGAINST SPECIFIC SECURITY VULNERABILITY ON WEBGUI PARAMETERS
IT02669JSON XQUERY TRANSFORMATION MIGHT TRIGGER A RESTART IF GENERATINGNON-JSON OUTPUT
IT02708SSL/TLS RENEGOTIATION MIGHT RESULT IN FAILURE IN SOME SCENARIOS
IT02720VIRTUAL: IBM LICENSE METRIC TOOL (ILMT) MIGHT SHOW INACCURATE DATA
IT03781DATAPOWER WEBGUI RENDERING ISSUE OCCURS WHEN ONE OR MORE DOT CHARACTERS ARE USED IN OBJECT NAMES



6.0.0.7

Release date: 19 June 2014
Last modified: 18 June 2014
Status: Available

APAR
Description
IT02314CVE-2014-0224 - VULNERABILITY IN SSL CHANGECIPHERSPEC PROCESSING



6.0.0.6

Release date: 30 May 2014
Last modified: 28 May 2014
Status: Available

APAR
Description
IC97165UNDER CERTAIN NETWORK CONDITIONS AN SQL DATA SOURCE UNDER HEAVY LOAD MIGHT GO DOWN AND DOES NOT RECOVER
IC98670DATAPOWER DOES NOT VALIDATE AND ACCEPT OAUTH TOKENS THAT ARE URL SAFE BASED ON RFC 4648 SPECIFICATIONS
IC98841DATAPOWER MIGHT RESTART WHEN SECURITY CONTEXT ENTRY IS MODIFIED UNDER LOAD
IC99105LOAD BALANCER GROUP HEALTH CHECK FAILS WITH 'HTTP 400 BAD REQUEST' ERROR WHEN USING A HOST NAME
IC99106BINARY TRANSFORM MIGHT FAIL WITH AN INVALID INPUT ERROR IF COUNT($) IS USED IN THE WTX MAP
IC99165INCORRECT DATAPOWER SOMA INTERFACE SCHEMA DEFINITIONS FOR SOME STATUS PROVIDERS
IC99260AAA POST PROCESSING LTPA TOKEN MIGHT NOT GENERATE LARGE EXPIRY DURATION
IC99296HEADER VALUES ARE NOT DISPLAYED IN THE 'SEND A TEST MESSAGE' TOOL
IC99400USING THE GENERIC NAME 'WSRR' FOR A WSRR SERVER OBJECT MIGHT CAUSE AN UNEXPECTED APPLIANCE RESTART
IC99417ISAM CLIENT AND WEBSPHERE JMS SERVER MIGHT HANG OR RESTART IF PRESENTED WITH A MALFORMED X.509 CERTIFICATE CHAIN
IC99492A GROUP MEMBER MIGHT RESTART WITH WATCHDOG WHEN RECOVERING FROM MISCONFIGURED SLM PEERING GROUP
IC99575FAILED TO DETECT NETWORK FAILURE IMMEDIATELY WITH SHARED CONVERSATION ENABLED IN MQ QUEUE MANAGER
IC99761PROBLEM READING HEADERS FROM BACKEND
IC99832CERTAIN COLUMNS DO NOT SORT WHEN VIEWING TCP PORT STATUS IN THE WEBGUI
IC99850MEMORY GROWTH MIGHT OCCUR WHILE USING LDAP SEARCH
IC99883'SSH CLIENT: KILLED BY SIGNAL 15' MESSAGE DISPLAYED WHEN USING SFTP
IC99885ERROR RESPONSE FROM NTP SERVER MIGHT CAUSE LARGE TIME ADJUSTMENTS
IC99958LDAP SEARCHES MIGHT FAIL WITH 'MSGID MISMATCH' ERROR WHEN USING LDAP CONNECTION POOLING
IT00246SFTP PROXY RETURNS DIFFERENT ERROR CODE IF FILE IS NOT FOUND AFTER UPGRADING TO 6.0.0.X
IT00247ASYNCHRONOUS CALL RULE AFTER RESULTS ACTION STRIPS ATTACHMENTS FROM MESSAGE
IT00290CRL FETCH URL FIELD REJECTS VALID URL WITHOUT FILE NAME PORTION
IT00426DATAPOWER XQUERY PROCESSOR RAISES ERROR WHEN VARIABLES ARE INITIALIZED WITH JSON DATA
IT00516COMPILATION OF STYLESHEET WITH <DP:SERIALIZE> AS THE CHILD OF <FUNC:FUNCTION> CAUSES AN APPLIANCE RESTART
IT00538DATAPOWER MIGHT RESTART IN RARE CASES BECAUSE OF MQ CONNECTION REUSE ERROR
IT00564SOME DNS LOOKUPS MIGHT RESULT IN AN APPLIANCE RESTART
IT00733VIRTUAL: SOFT POWER OPERATIONS PROVIDED BY VMWARE TOOLS MIGHT BE DISABLED ON THE HYPERVISOR'S INTERFACE
IT00735USERS ARE INCORRECTLY REDIRECT UPON FAILED LOGIN WHEN FORMS BASED LOGIN IS USED FOR AAA
IT00750WTX PROCESSING MIGHT PRODUCE 'INPUT INVALID BUT UNKNOWN DATA FOUND' ERROR
IT00803RESTART OF A DOMAIN CONTAINING A WEBSPHERE CELL CONFIGURATION MIGHT RESULT IN AN IMMEDIATE RESTART OF THE DATAPOWER APPLIANCE
IT00807A RESTART MIGHT OCCUR WHEN APPLYING CHANGES TO THE 'GENERATE LTPA TOKEN' PROPERTY
IT00849DOCUMENT CACHE IS EMPTY AND REMAINS EMPTY
IT00877REQUESTS FOR A RESOURCE IN THE PENDING STATE OF THE DOCUMENT CACHE MIGHT BYPASS THE CACHE
IT01034WEBGUI HANGS WHEN CREATING NEW SELF-SIGNED CERTIFICATE
IT01157MQ TRANSACTIONS MIGHT FALL INTO INFINITE ERROR REPORTING LOOP IF THE BACKEND OF MQ-QM HAS A PROBLEM
IT01221VIEWING SYSTEM LOG USING A BROWSER WITHOUT A LOCALE SPECIFIED MIGHT CAUSE THE DATAPOWER APPLIANCE TO RESTART
IT01245DATAPOWER APPLIANCE MIGHT RESTART WHEN A PROCESSING POLICY ERROR RULE CONTAINS ASYNCHRONOUS ACTION
IT01357WEBGUI SHOWS THE PORT VALUE WITH A THOUSANDS SEPARATOR WITH CERTAIN BROWSER LANGUAGE SETTINGS
IT01554API MANAGEMENT SPECIFIED THRESHOLD INTERVAL SETTING MIGHT NOT BE ACTED UPON CORRECTLY



6.0.0.5

Release date: 4 April 2014
Last modified: 2 April 2014
Status: Available

APAR
Description
IC97900 VIRTUAL: THE DATAPOWER VERSION IN THE .OVF FILE MIGHT BE MISSING A DIGIT
IC98103 NO USER NAME IS LOGGED IN DATAPOWER AUDIT-LOG WHEN USING USER CERTIFICATE LOGIN
IC98153 SQL DATASOURCE OBJECTS MIGHT NOT AUTHENTICATE WITH WINDOWS AUTHENTICATION
IC98330 SSL CLOSURES MIGHT CAUSE A DATAPOWER APPLIANCE TO TEMPORARILY BE UNRESPONSIVE
IC98407 DEPLOYMENT POLICY VARIABLE IS RESOLVED ONLY IF PLACED AT BEGINNING OF EXPRESSION
IC98456 SFTP UPLOAD OF LOG TARGET FILES MIGHT FAIL
IC98530 PROBE NOT WORKING WHEN ALLOW COMPRESSION IS ENABLED IN THE USER AGENT
IC98576 CHANGE IN WTX LIBRARY CAUSES BINARY TRANSFORM TO NOT EXTRACT DATA
IC98630 KERBEROS TCP REQUESTS TO MIT KDC MIGHT FAIL DUE TO CONNECTION REUSE
IC98637 DATAPOWER C14N DEBUG FILES MIGHT NOT OPEN WHEN CERTAIN CHARACTERS APPEAR IN THE FILE NAME
IC98762 TRANSFORM BINARY ACTION USES CACHED VERSION OF THE WTX MAP FILE INSTEAD OF THE UPDATED WTX MAP FILE ON RAID VOLUME
IC98780 UNEXPECTED RESTART WHEN USING TLS 1.2 (CVE-2013-6449)
IC98838 ROLE BASED MANAGEMENT (RBM) ACCESS POLICY RULES TO PREVENT USER FROM DISCONNECTING SESSIONS FOR OTHER USERS MIGHT NOT WORK
IC98865 WHEN PARSING A MESSAGE DATAPOWER WTX TRANSFORMATION RETURNS: ERROR ONE OR MORE INPUTS IS INVALID
IC98991 REVIEW CHANGES COMPARE VIEW DOES NOT ALLOW TO EXCLUDE GENERATED AND EXTERNAL DATA
IC99038 FILE FFDC-PACKETCAPTURE HAS INCORRECT MIME CONTENT TYPE IN ERRORREPORTS
IC99039 A RESTART MIGHT OCCUR WHEN USING AN XQUERY/JSONIQ SCRIPT WITH RARELY USED UNICODE ENCODINGS
IC99081 DATAPOWER MIGHT RESTART WHEN A REQUEST IS RECEIVED WITH CONTENT-TYPE: MULTIPART/RELATED
IC99082 USING SFTP POLLER FRONT SIDE HANDLER OR SQLDATA SOURCE BACKEND MIGHT RESTART DURING DATA TRANSFER
IC99305 M/T 9235: WEBSPHERE DATAPOWER SOA APPLIANCE MIGHT INCORRECTLY REPORT THE FAILURE OF TWO POWER SUPPLIES
IC99407 DATAPOWER MIGHT GENERATE INVALID HTTP REQUESTS WITH DUPLICATE CONTENT LENGTH HEADERS



6.0.0.4

Release date: 31 January 2014
Last modified: 27 January 2014
Status: Available

APAR
Description
IC93036 APPLIANCE MIGHT RESTART WHEN SERIALIZING BIG XML OUTPUT AND THE CONNECTION TEMPORARILY CANNOT TAKE DATA
IC93504 WS-PROXY HTTP CLIENT IP LABEL CHANGES AUTOMATICALLY WHEN WS-PROXY IS MODIFIED FROM WEBGUI
IC96067 XC10: INCORRECT DATA MIGHT BE RETRIEVED WHEN READING FROM THE XC10
IC96082 JSON XQUERY TRANSFORMATION TRIGGERS A RESTART IF GENERATING NON-JSON OUTPUT INTO A CONTEXT AND OUPUT:METHOD IS JSON
IC96170 BLADE AND VIRTUAL: EXTENDED BACKTRACE INFORMATION MIGHT NOT BE INCLUDED IN AN ERROR REPORT
IC96536 DATAPOWER RE-USES QUEUE HANDLES WITH PMO=2 OR PMO=4 RESULTING IN MQ ERROR CODE 2095
IC96920 DOMAIN EXPORT USING WEBGUI MIGHT CAUSE HANG AND WATCHDOG RESTART
IC96959 ON AN HTTP ERROR 412 DATAPOWER RETURNS WITH NO MESSAGE
IC97124 LOAD BALANCER GROUP HEALTH CHECK RETURNS ?HTTP 404 NOT FOUND? ERROR WHILE USING AN IP ADDRESS
IC97138 A WS-MEDIATIONPOLICY ATTACHED SEVERAL TIMES TO THE SAME MULTI-PROTOCOL GATEWAY MIGHT NOT BE ENFORCED CORRECTLY
IC97166 SECURITY IMPROVEMENTS FOR THE WEBGUI
IC97354 A DATAPOWER APPLIANCES DNS CONFIGURATION SET TO ROUND ROBIN DOES NOT HONOR THE TIME TO LIVE (TTL) SETTING
IC97356 PROCESSING A WSDL UPDATE IN A WEB SERVICE PROXY WHILE SERVICING TRAFFIC MIGHT CAUSE A RESTART
IC97378 LOG TARGET WITH EVENT TRIGGERS MIGHT CAUSE RESTART DUE TO HIGH MEMORY
IC97391 DATAPOWER MIGHT RESTART IN RARE SITUATIONS WHEN PARSING XML
IC97401 WTX MAP FAILS WHEN A LONG URL STRING IS USED
IC97688 WEB APPLICATION FIREWALL PORT REMOVED FROM TCP TABLE UPON DOMAIN RE-ENABLE
IC97802 UNDER CERTAIN CONDITIONS, WHEN WS-MEDIATIONPOLICY CUSTOM ROUTE ALGORITHM IS USED, THE DESTINATION ROUTE IS NOT PROPERLY SET
IC97803 XC10: DECRYPTION OF ENCRYPTED DATA STORED ON THE XC10 MIGHT FAIL
IC97807 INTERNALLY USED FILES MIGHT BE GENERATED AND FILL ENCRYPTED SPACE IN CASE OF SQL PROBLEMS
IC97869 SOME RAID FOLDERS MIGHT BE MISSING IN THE LOCAL: AND LOGSTORE: DIRECTORIES AFTER A FIRMWARE UPGRADE
IC97891 DELETION OF WEB SERVICE PROXY RELATED OBJECTS VIA DATAPOWER CLI MIGHT FAIL UNTIL RELOAD IF RBM IS ENFORCED
IC97930 HIGH LATENCY MIGHT OCCUR ON 5.0.0.0 OR LATER FIRMWARE
IC98483 MISSING ONLINE HELP FOR MIME SERVICE VARIABLE
IC98486 INCORRECT PARAMETERS IN SOME NON-ENGLISH LOG MESSAGES



6.0.0.3

Release date: 26 November 2013
Last modified: 22 November 2013
Status: Available

APAR
Description
IC93084SFTP POLLER USED AGAINST A DISABLED SFTP SUBSYSTEM MIGHT CAUSE THE APPLIANCE TO RESTART
IC93918DATAPOWER MIGHT NOT PREVENT SENDING MULTIPLE HTTP CONTENT-LENGTH HEADERS WHEN MAKING A URL-OPEN CALL
IC94241DATAPOWER RADIUS AUTHENTICATION FAILS WITH ONE TIME PASSWORD (OTP)
IC94315NON SAFE-TO-PRINT DATA IN MQRFH2 HEADER MIGHT DISABLE THE DATAPOWER PROBE
IC94414MEMORY GROWTH MIGHT OCCUR WHEN PROCESSING MESSAGES WITH ATTACHMENTS
IC94904500 ERROR: INTERNAL ERROR RECEIVED WHEN VIEWING WS-I BP STATUS VIOLATIONS FOR A WEB SERVICE PROXY
IC95137DATAPOWER MIGHT RESTART WHEN WEB SERVICE MANAGEMENT PROCESSES EXTENSION VARIABLE AS A NODESET
IC95229CLICKING RAID BATTERY BACKUP STATUS IN WEBGUI LEADS TO A RESTART
IC95531DATAPOWER ACCEPTS INVALID JSON MESSAGE WITH TRAILING COMMA
IC95557EXCESSIVE CONCAT() ARGUMENTS MIGHT CAUSE DATAPOWER TO RESTART
IC95735'REJECTED BY FILTER' FAULT RECEIVED WHEN SENDING REQUESTS WITH ATTACHMENTS USING MTOM TO WEB SERVICE PROXY SERVICE
IC95739NO ERROR REPORTED WHEN IMPORTING AN INVALID WSDL CONTAINING TWO ADDRESS TAGS FOR A SINGLE PORT
IC95760SECURITY IMPROVEMENTS FOR WEBGUI FORMS
IC95849INDEPENDENT HEALTH CHECK DOES NOT START AFTER ITS DOMAIN IS ENABLED AFTER A RESTART
IC95887SUB-ERROR CODES ARE NOT POPULATED IN THE WEB SERVICES MANAGEMENT(WSM) RECORD
IC95913USING WEBSPHERE TRANSFORMATION EXTENDER (WTX) MIGHT CREATE LOGFILE THAT FILLs FILESYSTEM
IC95952WEB SERVICE PROXY RETURNS TWO SOAP ENVELOPES WHEN PROBE IS ENABLED AND WEB SERVICE MANAGEMENT IS ENABLED IN BUFFER MODE
IC95973DISABLING A DOMAIN CONFIGURED WITH A MULTICAST SLM PEER GROUP MIGHT RESULT IN A DATAPOWER APPLIANCE RESTART
IC95975AUTHORIZATION FORM GENERATED THROUGH IMPLICIT GRANT TYPE MIGHT NOT BE SUBMITTED WHEN THE SUBMIT BUTTON IS CLICKED
IC95977WHEN A PRIVILEGED USER IS RESTRICTED TO A DOMAIN, CERTAIN STEPS MIGHT ALLOW THAT USER TO ACCESS TO OTHER DOMAINS
IC95986BACKEND HTTP TRANSACTIONS WITH DOCUMENT CACHE ENABLED MIGHT RESULT IN A DATAPOWER APPLIANCE RESTART
IC96015LOAD BALANCER ODCINFO IS NOT IMMEDIATELY RETRIEVED AFTER DOMAIN RESTART
IC96035COLLECTING SNMP INFORMATION WITH SNMPWALK MIGHT RESULT IN AN 'OID NOT INCREASING' MESSAGE
IC96065AAA POLICY DOES NOT WORK WITH GENERATED LTPA TOKEN
IC96119DATAPOWER WEBGUI MIGHT DISPLAY WRONG TIME AT NOON
IC96120CHANGES TO A DOCUMENT IN THE CACHE ARE NOT PICKED UP UNTIL THE CACHE IS FLUSHED
IC96121INCORRECT HTTP METHOD IN BACKEND REQUESTS
IC96154DELAYED RESPONSE FROM DNS SERVER MIGHT CAUSE APPLIANCE TO RESTART
IC96164DATAPOWER APPLIANCE PROBLEM ANALYSIS MIGHT BE AFFECTED BY INCOMPLETE BACKTRACE INFORMATION
IC96195PSIRT (PRODUCT SECURITY INCIDENT RESPONSE TEAM) LOGIN THREAT IDENTIFIED
IC96197SECURITY IMPROVEMENTS FOR THE PROCESSING OF URL PARAMETERS IN THE WEBGUI
IC96342EDITING MULTI-PROTOCOL GATEWAY SERVICES VIA WEBGUI MIGHT REVERT CERTAIN FIELDS TO THEIR DEFAULT VALUE
IC96508WHEN AN LTPA KEY FILE IS UPLOADED THAT FILE IS NOT AVAILABLE IN THE PATTERN CONSOLE LTPA KEY FILE DROP-DOWN LIST
IC96510INVALID PATTERN IS CREATED WHEN AN OPTIONAL OBJECT REFERENCE IS LEFT BLANK AND THE FIELD VALUE IS LOCKED
IC96511UPDATING THE DATAPOWER FIRMWARE DOES NOT UPDATE PREDEFINED PATTERNS
IC96515DEPLOYING A PATTERN WHERE A REFERENCED CONFIGURATION IS MISSING REPORTS SUCCESS BUT NOTHING IS DEPLOYED
IC96516A PATTERN'S VARIABLE HEADING LABEL IS NOT PERSISTED
IC96542PREDEFINED ERROR POLICY FOR PATTERN 'WEB APPLICATION WITH LDAP AUTHENTICATION AND AUTHORIZATION' MIGHT RESULT IN A 500 ERROR
IC96547SOME PREDEFINED PATTERNS NEED UPDATED SOURCE SERVICE CONFIGURATIONS.
IC96549WEB SERVICES OPERATION METRICS DOES NOT DISPLAY ANY VALUES WHEN SOMA REQUESTS ARE SENT
IC96550CLICKING REVIEW CHANGES LINK DOES NOT SHOW CHANGES



6.0.0.2

Release date: 30 September 2013
Last modified: 29 September 2013
Status: Available

APAR
Description
IC90422DATAPOWER INCORRECTLY APPLIES XPATH EXPRESSION WHEN USING WS SECURITY POLICY SP:ENCRYPTEDELEMENTS ASSERTION
IC90925DATAPOWER CANNOT PARSE INPUT MESSAGE WHEN MQ HEADERS CONTAIN XML CONTROL CHARACTERS
IC91048INEFFICIENT COMMUNICATION WITH XC10 REST GATEWAY MIGHT LEAD TO SUB-OPTIMAL PERFORMANCE
IC91055AMPERSAND CHARACTER IS NOT ENCODED PROPERLY IN DATAPOWER WTX BINARY TRANSFORMATION
IC91589VALID XPATH EXPRESSION USED IN RESPONSE RULE MATCH ACTION CAUSES PARSE ERROR WITH JSON REQUEST AND XML/SOAP RESPONSE TYPE
IC91594CONVERSATION SHARING DOES NOT NEGOTIATE FULL DUPLEX CHANNEL WHEN QUEUE MANAGER CHANNEL ATTRIBUTE OF SHARING CONVERSATION IS SET AT 1
IC91596CANNOT PERFORM A SECURE-RESTORE ON AN APPLIANCE IF THE FIRMWARE LEVEL OF THE APPLIANCE IS A DEBUG BUILD.
IC91647 WEB SERVICE PROXY DOES NOT RETURN THE RESPONSE BODY IF THE OPERATION CONFORMANCE POLICY EXISTS AND THE PROBE IS ENABLED
IC91687MT 7198/7199: CERTAIN RSA OPERATIONS INVOLVING UNUSUAL BIT LENGTHS FAIL ON DEVICES WITH HSM
IC91944WEBSPHERE TRANSFORMATION EXTENDER (WTX) BINARY TRANSFORM ACTION ADDS EXTRA TEXT AT THE END OF THE OUTPUT
IC92092APP-MGMT-PROTOCOL WSDL FILES MIGHT CONTAIN ERRORS
IC92151CLIENT CONNECTION HANGS WHEN ON-ERROR ACTION CAUSES PROCESSING TO CONTINUE AFTER A FAILED TIBCO LOG ACTION
IC92153UNEXPECTED RESTART MIGHT OCCUR AND A FATAL EXCEPTION IPMI EVENT IS LOGGED WHEN USING NFS
IC92189IBM SECURITY ACCESS MANAGER (ISAM) CERTIFICATE RENEWAL ACTION MIGHT FAIL IF THE CERTIFICATE HAS EXPIRED
IC92287DISABLING SYSPLEX DISTRIBUTOR TARGET CONTROL SERVICE MIGHT CAUSE DATAPOWER TO RESTART
IC92638ONLY THE FIRST WS-PROXY PROCESSING RULE AT WSRR-SAVED-SEARCH-SUBSCRIPTION LEVEL IS INVOKED WHEN USING MULTIPLE SAVED SEARCH SUBSCRIPTIONS WITH MULTIPLE PROCESSING RULES
IC92808 RESPONSE BODY INCORRECTLY SENT TO CLIENT OF WEB SERVICE CONFIGURED WITH ONE-WAY PATTERN IN CASE OF SOAP FAULT
IC92982WEB SERVICE PROXY MIGHT FAIL TO DETECT THE BOUNDARY DELIMITER STRING WHEN PARSING AN MIME MESSAGE
IC93006 ENABLING PROBE WITH NON-XML REQUEST TYPE RULE AND FLOW CONTROL ENABLED, WHEN INPUT NOT CONSUMED, MIGHT CAUSE TRANSACTION ERROR
IC93907DATA ON A PERSISTENT STORAGE MIGHT BE LOST UNDER CERTAIN CIRCUMSTANCES
IC94225IF STREAMING MESSAGES IS ENABLED, THE BACKEND MIGHT BE ACCESSED EVEN IF AAA REJECTS THE REQUEST
IC94296UNABLE TO CONFIGURE DNS SERVERS RETRIES VALUE TO 0
IC94481WATCHDOG RESTART WHEN SAVING CONFIGURATION, IF DHCP IS CONFIGURED BUT NOT AVAILABLE
IC94683DOCUMENT CACHE ENTRY STAYS IN PENDING STATE
IC94735AN XSLT TRANSFORM MIGHT RESTART THE DATAPOWER APPLIANCE
IC94742A DATAPOWER APPLIANCE MIGHT RESTART WHEN EXECUTING AN XSLT TRANSFORM
IC94767ISAM LDAP TRACE FILES EXIST BUT MIGHT NOT BE POPULATED WITH TRACE INFORMATION
IC94808WHEN A DATAPOWER APPLIANCE IS CONFIGURED TO RESTART UPON LOW RESOURCES, THE BACKTRACE MIGHT LOG THE WRONG STATE
IC94877DATAPOWER SSL SERVER INCORRECTLY REJECTS LARGE CLIENT_VERIFY MESSAGES



6.0.0.1

Release date: 20 August 2013
Last modified: 20 August 2013
Status: Available

APAR
Description
IC92507DATAPOWER DOES NOT USE NEXT DNS IN THE LIST AFTER RECEIVING SERVFAIL MESSAGE
IC93249A DATAPOWER APPLIANCE CONFIGURED TO USE DOCUMENT CACHING OF INSUFFICIENT SIZE MIGHT RESULT IN A RESTART
IC93730USING ILLEGAL FILE NAME FOR AN EXPORT FILE MIGHT CAUSE THE APPLIANCE TO RESTART
IC93780A DUPLICATE COPY OF THE LATEST PACKET CAPTURE FILE EXISTS WHEN CONTINUOUS PACKET CAPTURE IS USED
IC93781SOME USES OF DYNAMIC JSON DATA MIGHT CAUSE THE APPLIANCE TO RESTART
IC93783TOTAL TEMPORARY SPACE ON 7198 AND 7199 HARDWARE PLATFORMS IS LESS THAN OUR PREVIOUS RELEASE
IC93842WHEN A DATAPOWER APPLIANCE HAS HIGH MEMORY USAGE, CREATING MEMORY DUMPS CAN TAKE AS LONG AS 5 MINUTES
IC93843A DATAPOWER GUEST USER LOGGED IN TO THE PATTERNS CONSOLE CAN VIEW MORE THAN EXISTING PATTERNS
IC93845INCORRECT MESSAGES ARE LOGGED WHEN IMPORTING API MANAGEMENT CONFIGURATION TO THE DATAPOWER APPLIANCE
IC93846DATAPOWER TRANSACTIONS ROUTING TO ON DEMAND ROUTER (ODR) MIGHT FAIL WITH 500 ERRORS
IC93847SLM INTERVAL ENFORCEMENT ISSUE
IC93935INTERMITTENT FAILURES DURING STARTUP MIGHT RESULT IN A HANG
IC93979GLOBALIZATION FILES MISSING IN XG45 SOFTWARE IMAGES
IC94021INCONSISTENT ERROR REPORTING STYLE WHEN IMPORTING PATTERNS
IC94147CHECKPOINT ROLLBACK DOES NOT REMOVE NEWLY ADDED OBJECTS IN 6.0.0.0
IC94261DOCUMENT CACHE STALE ENTRY INDICATED WHEN NOT REALLY STALE
IC94339LTPA PATTERN AAA POLICY FAILS BECAUSE LTPA 'GENERATE TOKEN KEY FILE' IS NOT EXPOSED TO THE USER
IC94431'SEND A TEST MESSAGE' FUNCTIONALITY IS BROKEN IN 6.0.0.0
IC94513A DATAPOWER APPLIANCE MIGHT HANG AFTER REMOVING A FRONT-SIDE HANDLER
IC94534GENERATED DEPLOYMENT POLICY FOR A PATTERN DOES NOT USE PCRE MATCHING
IC94536CLI OR WEBGUI HANGS WHEN DOING CONSECUTIVE DOMAIN RESTARTS
IC94537DATAPOWER APPLIANCE MIGHT RESTART DURING DOMAIN DELETION
IC94538IF AN INCONSISTENCY IS FOUND WHEN CREATING A NEW PATTERN, THE ERROR PERSISTS EVEN AFTER THE PROBLEM IS CORRECTED
IC94560A DATAPOWER APPLIANCE MIGHT RESTART AGAIN AFTER A FULL RESTART OR A DOMAIN RESTART
IC94576THE DATAPOWER APPLIANCE MIGHT RESTART WHEN ON DEMAND ROUTER (ODR) IS ENABLED AND RESTART OF DEFAULT DOMAIN IS INITIATED
IC94581CHANGES MADE TO CONFIGURATION OBJECTS THAT ARE ALSO INCLUDED IN A PATTERN MIGHT BE OVERWRITTEN UPON PATTERN DEPLOYMENT
IC94583PATTERN WIZARD PREDEFINED VALUES IN DROP DOWN LISTS DO NOT USE PROPER DISPLAY NAMES
IC94587THE 'WEB APPLICATION WITH OAUTH AUTHORIZATION ENFORCEMENT' PATTERN MIGHT REFERENCE AN INCORRECT FILE
IC94606THE REINITIALIZE COMMAND REMOVES INACTIVE LICENSES
IC94639INCORRECT HANDLING FOR MQ ALTERNATE USER ID
IC94644DATAPOWER APPLIANCE MIGHT RESTART DURING RESTART OF DOMAINS



6.0.0.0

Release date: 28 June 2013
Last modified: 28 June 2013
Status: Available

The 6.0.0.0 release includes all APARs in the 5.0.0.8 fix packs.
APAR
Description
IC79134DP:GET-CERT-DETAILS INCORRECTLY ESCAPES NON-ASCII CHARACTERS IN ISSUERALTNAME AND SUBJECTALTNAME EXTENSIONS
IC80143LDAP CLIENT DOES NOT DO SSL CACHING (EVEN IF SSL PROXY PROFILE 'CLIENT-SIDE SESSION CACHING' IS SET TO 'ON')
IC81982CONTENT TYPE HEADER INJECTED IN RESPONSE FROM REMOTE SERVER FOR HTTP GET REQUEST
IC88020SSL PROXY PROFILE USED BY DATAPOWER WEB SERVICE PROXY TO IMPORT REMOTE SCHEMA IS NOT CONFIGURABLE
IC82397SSL CLIENT CACHING MIGHT USE WRONG CREDENTIALS WHEN MULTIPLE SSL PROXY PROFILES WITH THE SAME IP & PORT ARE USED BY AN XML MANAGER
IC83657EMPTY DEFAULT WSA:ACTION FIELD IN DATAPOWER WEB SERVICE PROXY WHEN CLIENT DOES NOT PROVIDE HEADER
IC82830DATAPOWER WEBGUI MIGHT SHOW A JAVASCRIPT ERROR FOR SOME SERVICE NAMES
IC83090MULTI-PROTOCOL GATEWAY SETS HTTP VIA HEADER INCORRECTLY
IC82731DATAPOWER LOAD BALANCER GROUP HEALTH CHECK REQUESTS MIGHT TAKE LONGER THAN THE SPECIFIED TIMEOUT TO FAIL
IC85067HELP IS NOT ALWAYS AVAILABLE FOR TRAP EVENT SUBSCRIPTIONS ADDED TO SNMP SETTINGS
IC83521SSL VERSION CHANGE ON BACKEND SERVER MIGHT CAUSE SSL HANDSHAKE FAILURES
IC85341INCOMING CONNECTIONS MIGHT HANG AFTER REMOVING ACL FROM FRONT- SIDE HANDLER
IC85322CPU USAGE FOR 1 MIN, 10 MIN, 1 HOUR AND 1 DAY DISPLAY INCONSISTENT VALUES
IC85966DOMAIN RESTART MIGHT RESULT IN DUPLICATE CONFIGURATION
IC85910CRL RETRIEVAL STATUS INCORRECTLY MARKED AS 'DOWN' AFTER DELETING CRL UPDATE POLICY THROUGH CLI
IC89342SCP LOG TARGET MIGHT CAUSE SYSTEM HANG IF SCP SERVER IS UNRESPONSIVE
IC85254UPTIME FOR SNMP STATUS PROVIDER BECOMES NEGATIVE AFTER 270 DAYS
IC85974ADD SWITCH FOR SUPPORTING LDAP SEARCH FOR GROUPS IN RBM AS BIG ENDIAN
IC88177FOR FORMS BASED LOGIN, REDIRECT URLS MIGHT AFFECT FORWARDING COOKIES, WHICH COULD RESULT IN BACKEND APPLICATION ISSUES
IC86676SECURITY TESTING AGAINST WEBGUI PRODUCED MINOR FINDINGS
IC87187WEB SERVICE PROXY REFRESH BUTTON DOES NOT WORK AS EXPECTED
IC86436WEBGUI CREATES AN INVALID XPATH EXPRESSION WHEN YOU DEFINE MULTIPLE EXPRESSIONS
IC87448WEB SERVICE PROXY DOES NOT DISPLAY PROCESSING RULE IN WEBGUI
IC89866PASSWORD FIELD IN SFTP LOG TARGET MUST BE POPULATED WITH A VALUE EVEN WHEN ONE AUTHENTICATES WITH A KEY
IC87371DEVICE MIGHT RESTART WHEN USING OPTION 'DYNAMIC' IN A BINARY TRANSFORM
IC89452ANTI-VIRUS ACTION INCORRECTLY DISPLAYS OUTPUT TYPE PROPERTY
IC89461CLI COMMAND PROMPT FAILS TO RETURN INFORMATIVE ERROR RESPONSE
IC89408INCONSISTENT DOCUMENTATION TO START TASKS IN WEBGUI
IC90099INAPPROPRIATE WARNING MESSAGES FROM WS-SECURITYPOLICY REGARDING ASSERTIONS IN RESPONSE ACTIONS



Change history
Last modified: 8 March 2016

  • 8 March 2016: Updated fix list for 6.0.0.19.
  • 5 February 2016: Updated fix list for 6.0.0.18.
  • 5 November 2015: Updated fix list for 6.0.0.17.
  • 2 September 2015: Updated fix list for 6.0.0.16.
  • 13 August 2015: Edited fix list for 6.0.0.15.
  • 24 July 2015: Edited fix list for 6.0.0.15.
  • 29 June 2015: Updated fix list for 6.0.0.15.
  • 11 May 2015: Edited fix list for 6.0.0.14.
  • 30 April 2015: Edited fix list for 6.0.0.14.
  • 28 April 2015: Edited fix list for 6.0.0.9.
  • 22 March 2015: Updated fix list for 6.0.0.13.
  • 11 February 2015: Updated fix list for 6.0.0.12.
  • 6 January 2015: Updated fix list for 6.0.0.11.
  • 24 November 2014: Updated fix list for 6.0.0.10.
  • 29 September 2014: Updated fix list for 6.0.0.9.
  • 22 August 2014: Edited fix list for 6.0.0.8.
  • 7 August 2014: Updated fix list for 6.0.0.8.
  • 18 June 2014: Updated fix list for 6.0.0.7.
  • 28 May 2014: Updated fix list for 6.0.0.6.
  • 2 April 2014: Updated fix list for 6.0.0.5.
  • 27 January 2014: Updated fix list for 6.0.0.4.
  • 22 November 2013: Updated fix list for 6.0.0.3.
  • 29 September 2013: Updated fix list for 6.0.0.2.
  • 20 August 2013: Updated fix list for 6.0.0.1.
  • 28 June 2013: Created fix list for 6.0.0.0.



Getting help and technical support
See Contacting IBM WebSphere DataPower Appliances support.

Off
[{"Product":{"code":"SSNR47","label":"WebSphere DataPower Service Gateway XG45"},"Business Unit":{"code":"BU053","label":"Cloud & Data Platform"},"Component":"Not Applicable","Platform":[{"code":"PF009","label":"Firmware"}],"Version":"6.0.0","Edition":"Edition Independent","Line of Business":{"code":"LOB45","label":"Automation"}}]

Problems (APARS) fixed
IC79134;IC80143;IC81982;IC88020;IC82397;IC83657;IC82830;IC83090;IC82731;IC85067;IC83521;IC85341;IC85322;IC85966;IC85910;IC89342;IC85254;IC85974;IC88177;IC86676;IC87187;IC86436;IC87448;IC89866;IC87371;IC89452;IC89461;IC89408;IC90099;IC92507;IC93249;IC93730;IC93780;IC93781;IC93783;IC93842;IC93843;IC93845;IC93846;IC93847;IC93935;IC93979;IC94021;IC94147;IC94261;IC94339;IC94431;IC94513;IC94534;IC94536;IC94537;IC94538;IC94560;IC94576;IC94581;IC94583;IC94587;IC94606;IC94639;IC94644;IC90422;IC90925;IC91048;IC91055;IC91589;IC91594;IC91596;IC91687;IC91944;IC92092;IC92151;IC92153;IC92189;IC92287;IC92638;IC92982;IC93907;IC94225;IC94296;IC94481;IC94683;IC94735;IC94742;IC94767;IC94808;IC94877;IC91647;IC92808;IC93006;IC93084;IC93918;IC94241;IC94315;IC94414;IC94904;IC95137;IC95229;IC95531;IC95557;IC95735;IC95739;IC95760;IC95849;IC95887;IC95913;IC95952;IC95973;IC95975;IC95977;IC95986;IC96015;IC96035;IC96065;IC96119;IC96120;IC96121;IC96154;IC96164;IC96195;IC96197;IC96342;IC96508;IC96510;IC96511;IC96515;IC96516;IC96542;IC96547;IC96549;IC96550;IC93036;IC93504;IC96067;IC96082;IC96170;IC96536;IC96920;IC96959;IC97124;IC97138;IC97166;IC97354;IC97356;IC97378;IC97391;IC97401;IC97688;IC97802;IC97803;IC97807;IC97869;IC97891;IC97930;IC98483;IC98486;IC97900;IC98103;IC98153;IC98330;IC98407;IC98456;IC98530;IC98576;IC98630;IC98637;IC98762;IC98780;IC98838;IC98865;IC98991;IC99038;IC99039;IC99081;IC99082;IC99305;IC99407;IC97165;IC98670;IC98841;IC99105;IC99106;IC99165;IC99260;IC99296;IC99400;IC99417;IC99492;IC99575;IC99761;IC99832;IC99850;IC99883;IC99885;IC99958;IT00246;IT00247;IT00290;IT00426;IT00516;IT00538;IT00564;IT00733;IT00735;IT00750;IT00803;IT00807;IT00849;IT00877;IT01034;IT01157;IT01221;IT01245;IT01357;IT01554;IT02314;IC99865;IT00812;IT00914;IT00982;IT01111;IT01123;IT01190;IT01192;IT01205;IT01287;IT01563;IT01586;IT01666;IT01688;IT01769;IT01802;IT01873;IT02041;IT02050;IT02104;IT02106;IT02109;IT02157;IT02315;IT02353;IT02355;IT02359;IT02360;IT02476;IT02492;IT02669;IT02708;IT02720;IT03781;IT02341;IT02628;IT02760;IT02762;IT02779;IT02803;IT02834;IT02925;IT02956;IT03015;IT03047;IT03094;IT03145;IT03344;IT03442;IT03868;IT03874;IT03095;IT03873;IT03931;IT03971;IT04329;IT04351;IT04387;IT04452;IT04661;IT04698;IT04764;IT04771;IT04784;IT05082;IT05116;IT06055;IT04792;IT04845;IT04883;IT04947;IT05111;IT05294;IT05579;IT05598;IT05626;IT05828;IT05864;IT05900;IT05905;IT05922;IT05969;IT05998;IT06941;IT06901;IT06902;IT07236;IT07604;IT08435;IT04826;IT05684;IT05952;IT05987;IT06007;IT06195;IT06232;IT06471;IT06480;IT06484;IT06511;IT06621;IT06671;IT06761;IT06796;IT06889;IT06895;IT07003;IT07119;IT07164;IT07237;IT07296;IT07570;IT07854;IT06611;IT07047;IT07218;IT07353;IT07368;IT07921;IT08202;IT08208;IT08231;IT08917;IT09536;IT07956;IT07346;IT08399;IT08663;IT08838;IT08971;IT09063;IT09129;IT09132;IT09145;IT09304;IT09308;IT09358;IT09382;IT09396;IT09638;IT09742;IT09773;IT09825;IT09835;IT09902;IT09938;IT10006;IT10010;IT10055;IT10061;IT10064;IT10086;IT10104;IT10110;IT10128;IT10219;IT07807;IT08134;IT11312;IT11326;IT09081;IT09792;IT09865;IT10105;IT10115;IT10149;IT10279;IT10321;IT10355;IT10426;IT10501;IT10508;IT10598;IT10628;IT10637;IT10644;IT10718;IT10890;IT10977;IT11010;IT11147;IT11169;IT11190;IT11191;IT10034;IT11162;IT11174;IT11215;IT11426;IT11551;IT11552;IT11642;IT11678;IT11697;IT11733;IT11824;IT11825;IT11841;IT11926;IT11928;IT11997;IT12032;IT12035;IT12040;IT12043;IT12061;IT12548;IT12556;IT12635;IT12863;IT13742;IT13989;IT14164

Document Information

Modified date:
15 June 2018

UID

swg24034959